Engineering-Jersey -Vice President-Software Engineering

ABOUT THE TEAM

The Client Identities Team, part of Identity and Access Management in the Engineering Division, is dedicated to delivering foundational platform services that support unified identity and authentication solutions. These services are designed to streamline the login process, minimize friction, and ensure secure access for external clients to the firm’s client‑facing applications, while enhancing security and reducing operational and infrastructure expenses for the firm.

• Document, design, and test service‑oriented enterprise software to help deliver critical business functions related to Authentication and Lifecycle Management of the firm’s digital client identities.
• Liaise with the firm’s technology risk groups to review design against the prescribed architecture, security and control framework for secure deployments.
• Participate in definition of requirements and help with deployment and support.
• Ensure that all platforms are built in accordance with the firm’s SDLC recommendations such as Git, Maven, and in accordance with industry‑standard practices such as RESTful web services.
• Design, evaluate, and recommend tools and technologies that the team should be using to help solve business problems.
• Document testing strategies, plan and run the User Acceptance Testing (UAT) phase to engage all essential stakeholders and acquire business approvals.
• Discuss changes to software that has already been deployed to enhance capabilities based on feedback obtained from business users.
• Guide new users to adopt the platform seamlessly and phase out legacy on‑premise software.

• Designing and managing applications or processes on Amazon Web Services (AWS), leveraging understanding of core AWS services and basic AWS architecture best practices.
• Working across requirements, design, and maintenance of distributed applications in Java.
• Utilizing Python to analyze and maintain server‑side scripts.
• Using SQL to analyze database queries and stored procedures.
• Supporting production environments to analyze and provide enhancements and bug fixes as required.
• Experience creating resilient, low‑latency and robust services through a combination of high availability infrastructure and transaction management.
• Ability to troubleshoot and diagnose performance, security, and process interactions in complex distributed systems.
• Ability to understand and effectively debug both new and existing software.

• 7 or more years of experience designing and developing distributed applications in a collaborative global team.
• Relevant background in security concepts, including authentication, authorization, encryption and secure coding practices.
• Familiarity with products such as Ping Federate, Okta, Kerberos.
• Understanding of some or all of the following concepts: OAuth 2.0, SAML 2.0, Open , IAM (Identity and Access Management), Multi‑Factor Authentication, Web Application Security, API gateways, REST APIs, SCIM standard, Security Logging.
• Strong analytical, reporting and presentation skills.

The expected base salary for this New York, New York, United States‑based position is $150,000–$250,000. In addition, you may be eligible for a discretionary bonus if you are an active employee as of fiscal year‑end.

Goldman Sachs is an equal employment/affirmative action employer. Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity.